Access Manager 5.0 Service Pack 4 (5.0.4) includes new features, enhancements, improves usability, and resolves several previous issues.
Many of these improvements were made in direct response to suggestions from our customers. We thank you for your time and valuable input. We hope you continue to help us ensure that our products meet all your needs. You can post feedback in the Access Manager forum on Micro Focus Forums, our online community that also includes product information, blogs, and links to helpful resources. You can also share your ideas for improving the product in the Ideas Portal.
For more information about this release and the latest release notes, see the Documentation page. Note that we have moved Access Manager 5.0 documentation from the NetIQ domain to Micro Focus. For Access Manager documentation versions prior to 5.0, see Documentation.
For a list of all issues resolved in NetIQ Access Manager 5.x, including patch and service pack releases, see List of fixed issues in Access Manager 5.x.
If you have suggestions for documentation improvements, click comment on this topic at the top or bottom of the specific page in the HTML version of the documentation posted on the Documentation page.
For information about the Access Manager support life cycle, see the Product Support Life Cycle page.
This release includes the following enhancements:
Access Manager now supports the OIOSAML 3.0 profile. The support includes both OIOSAML Web SSO 3.0.3 and OIOSAML Local IDP 1.0.2 profiles. For more information about OIOSAML 3.0 profiles, see OIOSAML Web SSO Profile 3.0.3 and OIOSAML Local IdP Profile 1.0.2. For more information about how to enable it, see Enabling OIOSAML Compliance.
Access Manager includes the following libraries to support the OIOSAML 3.0 profile:
xmlsec 1.5.8
wss4j 1.6.5
opensaml 2.5.1-1
xmltooling 1.3.2-1
Furthermore, to support a specific signature algorithm (rsassa-pss), the upgraded version of the library (npki.jar) is provided through an eDirectory RPM, which is bundled as a part of Access Manager’s distributable binaries.
In addition to the existing deliverables, this release introduces a guide for Access Manager Passwordless Authentication in the documentation library. This guide provides information about what is passwordless authentication, use cases, methods supported by Access Manager, and step-by-step instructions for configuring the passwordless authentication.
This release includes the following software fixes:
|
Component |
Defect ID |
Issue |
|---|---|---|
|
Identity Server |
227055 |
An OAuth client with multiple redirect URIs cannot be managed in the user portal. |
|
Identity Server |
196677 |
An open-redirect issue occurs after users are authenticated. |
|
Identity Server |
197569 |
Invalid resource key and invalid signature are detected in the SAML request. There is no non-unique key found. |
|
Logging/alerting/monitoring |
198513 |
The audit log has been changed from 4.5.3 to 5.1 for 002E0009 type events. |
|
Identity Server |
197602 |
Access Manager is unable to decrypt the assertion when a new algorithm is used. |
|
Logging/alerting/monitoring |
211487 |
ESP shows error 409 with PR access after Identity Provider authentication. ESP shows the error 409 while accessing a protected resource after Identity Server authentication. |
|
Logging/alerting/monitoring |
250290 |
The Access Manager Access Gateway auditing functionality is not working. The audit events are not sent to Sentinel, Analytics Dashboard, or Linux machine. |
|
Administration Console |
197438 |
Jersey logging is enabled on Administration Console. |
|
Server Communication |
196888 |
Access Manager, eDirectory, or NICI does not support the new algorithm (rsassa-pss). |
To upgrade to Access Manager 5.0 Service Pack 4, you must be on one of the following versions of Access Manager:
4.5 Service Pack 6
4.5 Service Pack 6 Patch 1
5.0 Service Pack 2
5.0 Service Pack 2 Patch 1
5.0 Service Pack 3
5.0 Service Pack 3 Patch 1
After purchasing Access Manager 5.0.4, download the software and the license from the Software License and Download portal.
NOTE:For Analytics Server, use the existing 5.0 Service Pack 2 versions. See Upgrading Analytics Server.
For information about the upgrade paths, see Supported Upgrade Paths. For more information about installing and upgrading, see the NetIQ Access Manager 5.0 Installation and Upgrade Guide.
To upgrade Access Manager on Docker, see Helm Charts in the NetIQ Access Manager 5.0 Installation and Upgrade Guide.
After upgrading to Access Manager 5.0.4, verify that the version number of the component is indicated as 5.0.4.0-44. To verify the version number, perform the following steps:
In Administration Console Dashboard, click Troubleshooting > Version.
Verify that the Version field lists 5.0.4.0-44.
The following issue is currently being researched for Access Manager 5.0 Service Pack 4.
Micro Focus strives to ensure that our products provide quality solutions for your enterprise software needs. If you need assistance with any issue, visit Micro Focus Support, then select the appropriate product category.
Issue: The Access Manager InterSet Common Events Format (CEF) events is experiencing connection/connectivity issues. (Defect ID - 274025)
Workaround: No workaround is available.
For more information, see Knowledge Article.
For specific product issues, contact Micro Focus Support at https://www.microfocus.com/support-and-services/.
Additional technical information or advice is available from several sources:
Product documentation, Knowledge Base articles, and videos: https://www.microfocus.com/support-and-services/
The Micro Focus Community pages: https://www.microfocus.com/communities/
For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government rights, patent policy, and FIPS compliance, see https://www.microfocus.com/about/legal/.
© Copyright 2023 Micro Focus or one of its affiliates.